How is the Portal backend database backed up?
Portal database has 2 tiers backup setup.
- Short-term; fine-grain database backup using RDS automated backup service.
- 7 days point-in-time (PIT) retention.
- Longer-term; RDS database instance backup using AWS Backup service.
- Backup weekly snapshot and keeping it for 6 weeks retention.
By a combination of 2 tier backup setup, we can effectively restore database to any point-in-time within past 7 days. After day 7, we can restore the database to its weekly state; upto past 6 weeks. (See RPO). By leveraging multiple backup services, it systematically increases backup redundancy.
- RDS automated backups are encrypted and, database instance is deletion protected.
- AWS Backup Vault is encrypted with KMS.
- Database maintenance and restore operations (DBA tasks) are carried out by trained person. (See PORTAL_RELEASE.md)